| ▲ | doomerhunter 2 days ago |
| I am a Burp guy, but lately Caido[1] has been trending, pretty lightweight and can be ran in headless mode. It's still very security-oriented (as Burp Suite is), but might be worth your time, notably as you can run it on a VPS/container to proxy all your traffic through it (which is by-design, contrary to my beloved burp/zap) [1] https://caido.io/ |
|
| ▲ | Sytten 2 days ago | parent [-] |
| Caido co-founder here, thanks for the shoutout! We are slowly moving to the DevSecOps space too. |
| |
| ▲ | doomerhunter 14 hours ago | parent | next [-] | | My pleasure, your team is doing a great job and its good to see competition in that space, forces everyone to push forward :D | |
| ▲ | ghxst 2 days ago | parent | prev [-] | | Please consider allowing the user to modify the TLS handshake / ClientHello. Out of all proxies I have used only Burp offers this through a plugin / extension. | | |
| ▲ | Sytten 6 hours ago | parent [-] | | Agreed this is something we need to do, but not easy to do properly. The TLS 1.3 spec has a lot of extensions, currently we use openssl that for example doesn't support GREASE. |
|
|
